$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft File: F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft (raw, json) Hash identifier: f5yIdREmlpirDj37rGa+Dq+6gxPFhjz50Py/n9qcsjo= Subject key identifier: 4D:EF:40:76:7A:5D:E7:B2:BE:18:DC:30:87:E7:92:BD:D0:CB:2F:45 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 2A84EA139BC5D95E11A20C561E892296ED4804B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft Manifest number: 02C2 Signing time: Sat 28 Feb 2026 16:40:02 +0000 Manifest this update: Sat 28 Feb 2026 16:35:02 +0000 Manifest next update: Wed 04 Mar 2026 03:26:02 +0000 Files and hashes: 1: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (hash: R48/rgbNCjjp4lN8u0WLGy1+WSaMSCFGbeTToOjbzmw=) 2: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (hash: LrqOLogV2pqJm1JD+jgGDFnoqudanN5BU7ote6ngSrk=) 3: F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl (hash: 8PKvQGI6iW8/hGOeHJO3xFgem/ZBw64ASQGrKdmgkJs=) 4: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (hash: oOGj5tlcgCuOuQ6ORsdrfX31aFz0B3FN8fvqd8j5T/A=) 5: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (hash: XeC/h72IOu7dA+NCUWie+KTWNqBhpQyXbuk3uFJs7XQ=) 6: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (hash: yBAmYPcX6Hw9g9sbt5o4PVcLnMdm+J2PfCuUjXQ0T5g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 03:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:84:ea:13:9b:c5:d9:5e:11:a2:0c:56:1e:89:22:96:ed:48:04:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Feb 28 16:35:02 2026 GMT Not After : Mar 4 03:26:02 2026 GMT Subject: CN=4DEF40767A5DE7B2BE18DC3087E792BDD0CB2F45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:42:4d:2b:36:c8:f3:2f:5f:7d:d8:91:6b:f3: 31:45:ad:50:98:fd:0a:8c:b6:eb:1a:5b:31:20:1a: 0e:3f:94:b2:93:d2:fc:a7:86:1f:bd:e6:78:c3:fe: 32:d4:fc:7c:4e:30:61:70:01:a4:c2:bd:60:7a:f1: 49:a5:11:a3:cf:db:9a:9e:6f:d0:a8:d7:47:6e:98: d5:89:0f:09:0d:05:53:1e:d1:3b:e8:fa:9e:00:4c: c9:fc:71:74:d3:a1:0d:2c:42:96:32:58:15:33:8d: 65:e2:b5:ab:de:32:6c:94:21:5e:4e:74:5c:e5:15: 98:b6:af:d2:ef:9c:38:a3:c8:12:bd:24:ca:ee:69: cf:d8:ad:fa:2a:03:3a:71:e8:6d:91:8c:c7:32:96: 6b:1a:1f:a8:9e:bd:63:8a:e4:b7:b4:ab:89:aa:1c: 8b:7f:65:65:38:99:3c:1b:73:c8:eb:dc:04:08:d6: a9:ab:84:7a:c6:8c:36:b8:87:c3:15:62:a3:c8:60: cb:01:1d:80:5b:5b:90:de:a5:00:ed:f9:18:33:b5: bb:11:4f:bc:96:82:4d:79:a1:79:6c:2d:8d:ce:63: 57:66:5d:27:4a:ee:bf:45:0d:9c:2a:3d:8f:3e:c1: ef:3e:08:e6:fa:1f:39:2d:dd:d7:14:dd:a0:ae:29: 72:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EF:40:76:7A:5D:E7:B2:BE:18:DC:30:87:E7:92:BD:D0:CB:2F:45 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:14:6d:5f:6e:99:40:b3:ad:f6:ef:ec:a0:58:e4:bc:22:f9: 92:74:d8:51:aa:b8:22:07:5a:e8:34:0f:54:b2:2f:80:84:ed: be:71:a4:d4:9f:bb:12:22:ff:fe:65:b1:b9:75:cd:57:2a:21: 64:cb:42:ea:0e:7c:ef:a5:bc:90:88:56:fe:84:fa:82:9c:80: 53:98:85:dd:2e:27:7b:ab:61:6d:59:81:62:cf:36:72:f3:7c: 72:53:7c:96:96:3d:ee:14:d6:f8:31:ad:bf:f4:65:26:6f:bc: c0:96:21:71:a2:2f:2c:40:43:27:cd:0d:68:38:34:f6:22:dd: 38:64:01:fd:02:97:35:b4:98:5b:10:ef:8d:84:d1:11:40:42: f2:87:83:5f:b7:94:bf:c0:57:5f:21:16:a6:61:25:57:cc:58: d1:74:c4:5a:27:81:c4:6b:7d:a9:c3:a1:45:45:f7:7d:24:de: f7:8a:1a:c3:81:cc:28:dd:42:f0:c8:30:c6:47:e0:d6:0a:06: f4:56:4c:c9:e2:89:cd:b7:2a:d9:b7:1d:41:8d:82:8e:6a:de: 8b:84:89:ad:d8:bc:67:e6:50:82:1d:5d:42:11:48:6c:cf:d7: 18:26:c7:2d:7b:b0:50:06:c6:25:f9:f2:5a:70:a1:51:6c:12: 9c:57:52:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKoTqE5vF2V4RogxWHokilu1IBLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNjAyMjgxNjM1MDJaFw0yNjAzMDQwMzI2MDJaMDMxMTAvBgNV BAMTKDRERUY0MDc2N0E1REU3QjJCRTE4REMzMDg3RTc5MkJERDBDQjJGNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Qk0rNsjzL1992JFr8zFFrVCY /QqMtusaWzEgGg4/lLKT0vynhh+95njD/jLU/HxOMGFwAaTCvWB68UmlEaPP25qe b9Co10dumNWJDwkNBVMe0Tvo+p4ATMn8cXTToQ0sQpYyWBUzjWXitaveMmyUIV5O dFzlFZi2r9LvnDijyBK9JMruac/YrfoqAzpx6G2RjMcylmsaH6ievWOK5Le0q4mq HIt/ZWU4mTwbc8jr3AQI1qmrhHrGjDa4h8MVYqPIYMsBHYBbW5DepQDt+RgztbsR T7yWgk15oXlsLY3OY1dmXSdK7r9FDZwqPY8+we8+COb6Hzkt3dcU3aCuKXJbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTe9Adnpd57K+GNwwh+eSvdDLL0UwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQwM2FmMDEtZjIzOS00YTFmLTgx Y2QtNDEwNmJlYmIyYTIyLzAvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1 RTkxQkJCOTJGNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF8UbV9umUCzrfbv7KBY5Lwi+ZJ02FGquCIH Wug0D1SyL4CE7b5xpNSfuxIi//5lsbl1zVcqIWTLQuoOfO+lvJCIVv6E+oKcgFOY hd0uJ3urYW1ZgWLPNnLzfHJTfJaWPe4U1vgxrb/0ZSZvvMCWIXGiLyxAQyfNDWg4 NPYi3ThkAf0ClzW0mFsQ742E0RFAQvKHg1+3lL/AV18hFqZhJVfMWNF0xFongcRr fanDoUVF930k3veKGsOBzCjdQvDIMMZH4NYKBvRWTMniic23Ktm3HUGNgo5q3ouE ia3YvGfmUIIdXUIRSGzP1xgmxy17sFAGxiX58lpwoVFsEpxXUtI= -----END CERTIFICATE-----Generated at Mon Mar 2 15:44:27 2026 by rpki-client